Facebook has been very uninteresting lately. And so he covers everything possible, and now he has informed about the big gap in his application. Fifty million users could be victims. A Facebook company known more closely as Stable Mark Zuckerberg today announced a big gap in its application. Honestly, when I read about her specifics about her, shivers passed on my back.
Luka gave hackers full access to a specific account. It is also about access to confidential data. What’s the worst, the vulnerability was detected already on Tuesday. The vulnerability was related to a function that allowed to see how the profile of the logged-in person is seen by other friends. This is the “See as” function. Thanks to it, hackers had the chance to steal the security token protecting the account and then log on to them. It sounds like a horror film scene – seriously. I can not understand how such a giant, as Facebook, allowed itself such a shortcoming in the code.
After detecting the error, it was immediately patched and the relevant services were informed about the problem
However, many users have complained about the fact that their Facebook accounts have started to log out of their devices spontaneously. I had the same myself. The worst thing is that you do not know who tempted such an action. It also means that the guilty party did not suffer the consequences. It is also unknown who attacked potential attacks. One can only guess that there could be some accounts. There is even talked about 50 million. The logout we experienced is simply resetting the access code via Facebook. This action will be taken for 90 million Facebook profiles. The “see as” function was also temporarily turned off. I think it is a good step. Thanks to this we have at least some level of security at this moment, however, I immediately changed the password to very, very strong. I will not be able to remember it myself, let alone a stranger. We’ve also had a description on the Facebook blog:
“People’s privacy and security is incredibly important, and we’re sorry this happened. It’s why we’ve taken immediate action to secure these accounts and let users know what happened. There’s no need for anyone to change their passwords.” – Facebook
Of course, we know nothing more. More information is expected to appear with the development of the investigation – at the moment we only know that this error has been present on the site since July 2017. It is not known who and how he used it.